$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nw9dEVBrEfaHupmE6YgQhU7UY0g.roa File: nw9dEVBrEfaHupmE6YgQhU7UY0g.roa (raw, json) Hash identifier: UFcIOIRRrzrEfJYY69fBaLKLp0Wtc+BlOzH7kY77KSM= Subject key identifier: 9F:0F:5D:11:50:6B:11:F6:87:BA:99:84:E9:88:10:85:4E:D4:63:48 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30E0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nw9dEVBrEfaHupmE6YgQhU7UY0g.roa Signing time: Mon 26 Aug 2024 05:29:55 +0000 ROA not before: Mon 26 Aug 2024 05:29:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12512 (0x30e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9F0F5D11506B11F687BA9984E98810854ED46348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:db:6b:44:35:42:ec:77:95:29:6d:39:8f:8a: 56:92:05:6f:4f:cc:59:a9:66:7f:8c:6d:93:83:15: d2:de:da:d1:a5:a7:5f:90:dd:56:98:ea:55:8b:a3: 72:70:78:3c:b7:ae:30:99:e4:bf:59:c5:dc:89:94: 43:fd:2c:84:bb:df:ef:4b:29:25:c4:c1:ab:e1:89: d9:62:50:dd:4f:74:cb:20:31:24:6a:5f:b8:dd:d0: e6:ec:7e:47:7d:08:63:cd:03:0f:9f:2b:a1:dc:03: d9:22:06:b8:ef:9b:d4:af:91:af:76:50:1e:3e:58: 46:7b:12:de:dc:38:a9:c2:ca:d3:06:16:0d:2d:3f: fe:51:82:dc:42:51:db:ea:12:ba:94:72:06:6c:ef: b8:d7:9b:f5:f8:42:1e:b8:f9:37:a7:14:6c:71:c0: e3:b7:9e:37:54:ca:b0:f8:cc:dc:b9:90:3b:66:20: 78:3a:ae:30:ff:8b:69:2f:43:fe:83:a3:86:06:3e: 42:c4:9e:df:1a:8a:24:11:b2:40:9b:33:2c:9b:9e: 66:67:30:ac:ce:ba:cd:59:4e:a8:ed:d6:1b:72:db: 59:f9:5b:8d:93:30:ed:ba:1e:4b:32:28:ab:b6:21: cc:a9:78:bd:e5:db:8b:cc:ce:11:ac:51:e3:43:30: 2f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0F:5D:11:50:6B:11:F6:87:BA:99:84:E9:88:10:85:4E:D4:63:48 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nw9dEVBrEfaHupmE6YgQhU7UY0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.176.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:62:d0:73:fc:26:7d:87:ec:f8:40:dd:88:33:ad:be:89:dc: 93:5a:da:e2:10:15:c0:69:b4:4a:f9:20:73:be:c6:59:88:67: 84:a3:e5:02:d9:c7:87:5b:9d:61:12:3f:17:34:d9:af:ae:2d: 51:32:b4:7d:07:d7:79:a2:1c:76:d6:fb:c8:50:e8:f3:08:35: f4:99:06:6c:21:6f:f9:d0:93:f1:5c:a9:60:1c:50:fc:a4:d6: e6:ed:b5:35:45:37:0a:87:53:9e:6f:29:18:55:7a:2f:14:1a: 3d:18:4f:d1:24:51:a5:25:31:a5:12:cd:90:ad:55:7a:97:5c: 0f:47:dc:3e:91:ae:1a:0b:ed:62:b3:26:27:13:30:bd:e0:a6: cc:7b:97:a6:03:cd:84:0a:6d:08:64:a5:6c:a2:b8:51:e4:46: f1:95:68:4f:3d:8c:ad:80:9a:52:7e:de:2e:cf:c5:3e:52:4c: 89:82:83:1e:69:86:d8:4c:cb:60:94:08:70:54:81:54:00:c5: 23:df:66:1f:0f:6f:93:83:f9:c4:f1:73:c2:f5:af:a7:45:b3: 8c:84:fa:1a:ae:54:28:f6:c2:d2:0a:03:f5:2a:25:f3:45:32: 4d:96:92:ff:f8:d7:74:f2:44:3a:eb:ea:3d:b1:88:58:af:a0: 55:ca:9d:15 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlGMEY1RDExNTA2QjEx RjY4N0JBOTk4NEU5ODgxMDg1NEVENDYzNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh22tENULsd5UpbTmPilaSBW9PzFmpZn+MbZODFdLe2tGlp1+Q 3VaY6lWLo3JweDy3rjCZ5L9ZxdyJlEP9LIS73+9LKSXEwavhidliUN1PdMsgMSRq X7jd0Obsfkd9CGPNAw+fK6HcA9kiBrjvm9Svka92UB4+WEZ7Et7cOKnCytMGFg0t P/5RgtxCUdvqErqUcgZs77jXm/X4Qh64+TenFGxxwOO3njdUyrD4zNy5kDtmIHg6 rjD/i2kvQ/6Do4YGPkLEnt8aiiQRskCbMyybnmZnMKzOus1ZTqjt1hty21n5W42T MO26HksyKKu2IcypeL3l24vMzhGsUeNDMC+7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnw9dEVBrEfaHupmE6YgQhU7UY0gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL253OWRFVkJyRWZhSHVwbUU2 WWdRaFU3VVkwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wLAwDQYJKoZIhvcNAQELBQADggEBAE5i0HP8Jn2H7PhA3Ygzrb6J3JNa2uIQFcBp tEr5IHO+xlmIZ4Sj5QLZx4dbnWESPxc02a+uLVEytH0H13miHHbW+8hQ6PMINfSZ Bmwhb/nQk/FcqWAcUPyk1ubttTVFNwqHU55vKRhVei8UGj0YT9EkUaUlMaUSzZCt VXqXXA9H3D6RrhoL7WKzJicTML3gpsx7l6YDzYQKbQhkpWyiuFHkRvGVaE89jK2A mlJ+3i7PxT5STImCgx5phthMy2CUCHBUgVQAxSPfZh8Pb5OD+cTxc8L1r6dFs4yE +hquVCj2wtIKA/UqJfNFMk2Wkv/413TyRDrr6j2xiFivoFXKnRU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org